search

DrFaust92 / terraform-kubernetes-ebs-csi-driver

Terraform module which creates Kubernetes EBS CSI controller resources on AWS EKS.
https://registry.terraform.io/modules/DrFaust92/ebs-csi-driver/kubernetes/latest
Other
31 stars 26 forks source link

Encryption support? #59

Closed ikarlashov closed 2 years ago

ikarlashov commented 3 years ago

Hey there,

We're using your code to deploy EBS-CSI driver into our EKS. There's one problem, due to security restrictions we can't create non-encrypted pvc/ebs volumes.

The current sc.yaml:

apiVersion: storage.k8s.io/v1
kind: StorageClass
metadata:
  annotations:
    storageclass.kubernetes.io/is-default-class: "true"
  name: gp2
parameters:
  fsType: ext4
  type: gp2
provisioner: kubernetes.io/aws-ebs
reclaimPolicy: Delete
volumeBindingMode: WaitForFirstConsumer

I walked through the code and couldn't even figure out at what stage StorageClass got created. Neither the way to pass additional params to its parameters.

Can you pls help with that?

DrFaust92 commented 2 years ago

You should create a storge class resource outside of the module